Hack Community - The Best Ethical Hacking Forums - Website Exploits Discussion

Havij v1.17 Pro Cracked Hackers Unleashed

Thu, 23 May 2013 19:15:49 +0000

Hii there guys its ma first post hope its valuable

Got a HAvji 1.1.7 cracked by HACKERSUNLEASHED

Havij Pro v1.17 CRACKED - in fact, the new version over the old favorites with Havij Crack

What\'s New?
• Dump all
• New bypass technique for MySQL exploitation parenthesis
• Write file feature additional for MSSQL and MySQL.
• Loading HTML type inputs
• Random signature generator
• Saving information in CSV format
• Advanced evasion tab within the settings
• Injection tab in settings
• \'Non-existent injection worth\' will currently be modified by user (the default value is 999999.9)
• \'Comment mark\' is modified by user (the default worth is --)
• Disabling/enabling of work
• Bugfix: adding manual information in tables tree read
• Bugfix: finding string columns in PostgreSQL
• Bugfix: MS Access blind string kind information extraction
• Bugfix: MSSQL blind motorcar detection once error-based technique fails
• Bugfix: all information blind strategies fail on rehear
• Bugfix: idea columns/tables in MySQL time-based injection
• Bugfix: blinking once merchandising into file
• Bugfix: loading project injection kind (Integer or String)
• Bugfix: HTTPS multi-threading bug
• Bugfix: command execution in MSSQL 2005

Features
1. Supported Databases with injection methods:
MSSQL 2000/2005 with error
MSSQL 2000/2005 no-error union-based
MSSQL blind
MSSQL time-based
MySQL union-based
MySQL blind
MySQL error-based
MySQL time-based
Oracle union-based
Oracle error-based
Oracle blind
PostgreSQL union-based
MS Access union-based
MS Access blind
Sybase (ASE)
Sybase (ASE) Blind
2. HTTPS support
3. Multi-threading
4. Proxy support
5. Automatic information server detection
6. Automatic parameter kind detection (string or integer)
7. Automatic keyword detection (finding the distinction between positive and negative responses)
8. Automatic scan of all parameters.
9. attempting completely different injection syntaxes
10. choices for substitution house by /**/,+,... against IDS or filters
11. Avoids exploitation strings (bypassing magic_quotes and similar filters)
12. Manual injection syntax support
13. Manual queries with result
14. Forcing extrajudicial union
15. Random signature generator
16. totally customizable protocol headers (like referer, user agent...)
17. Loading cookie(s) from web site for authentication
18. Load HTML type inputs
19. protocol Basic and Digest authentication
20. Injecting uniform resource locator rewrite pages
21. Bypassing ModSecurity internet application firewall and similar firewalls
22. Bypassing WebKnight internet application firewall and similar firewalls
23. Instant result
24. idea tables and columns in MySQL<5 (also in blind) and MS Access
25. fast retrieval of tables and columns for MySQL
26. Resuming a antecedently saved table/column extraction session
27. death penalty SQL question against associate Oracle information
28. Custom keyword replacement in injections
29. obtaining one complete row through one request (all in one request)
30. merchandising information into file
31. Saving information as XML
32. Saving information as CSV format
33. facultative xp_cmdshell and remote desktop
34. Multiple table/column extraction strategies
35. Multi-threaded Admin page finder
36. Multi-threaded on-line MD5 cracker
37. obtaining software package data
38. obtaining tables, columns and information
39. Command execution (MSSQL only)
40. Reading remote system files (MySQL only)
41. Creating/writing to a foreign file (MySQL and MsSQL)
42. Insert/update/delete information
43. Unicode support

DOWNLOAD LINK

http://www.mediafire.com/?97attt0qq8wv8ad

i didnt got the screenshot from them so i picked one from google and edited sorry for that

XSS full Tutorial

Thu, 16 May 2013 11:32:11 +0000

Hi Every One ~ This my first Tutorial in this HC Forum ! Now i explain Cross Site Scripting (XSS) . XSS is one of the easiest and most basic forms of website hacking. It is also an amazing method of social engineering .. Let see how we doing

Question : What is Cross site scripting (XSS) ?
XSS (or Cross site scripting) is exploiting a hidden input or form input in an website in order to inject your own scripts and HTML into a website. It occurs when websites don't filter characters in input fields such as ();>=<"' or only half way filters it. There are also many different types of XSS. . .

Question : What types of XSS are there?
May be 4 types !
1.) Persistent
2.) Non-Persistent
3.) DOM-based and
4.) RedXSS
Let's see what are they , , ,

Question : What is persistent XSS?
Persistent XSS (which is the least common) is when you inject a script into a web page and when you leave the page and return, the script sticks to the page .

What is non-persistent XSS?
Non-persistent XSS is when you inject a script on a web page and when you leave the page and return, the script is no longer there. This can still be very useful .

What is DOM-based XSS?
A DOM-based XSS is where you edit the DOM-Environment of a website (usually for malicious reasons) .

What is RedXSS?
RedXSS is an XSS attack on a forum that uses MyCode to hack users on the forum .

Ok . let's starting what you need !

You need :
An understand of HTML, especially forms.
An understanding of Javascript.
A brief understanding of PHP.
Mozilla Firefox . (NOT working on Chrome)

------------------------------------------------------------------------------------------------------------------------
How to Find XSS Vulnerabilities:-

To start finding these Vulnerabilities you can start checking out Blogs, Forums, Shoutboxes, Comment Boxes, Search Box's, there are too many to mention.

I receive questions on how i break into websites i mainly use SQLi but i have little but have some experience in XSS i will be combining my knowledge with that of some of my peers to give you a basic introduction into XSS. (credit -- AnonTitan)
'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
Ok .. let's start Basics of XSS !
Well now lets start learning some XSS Methods, the most common used XSS injection is :

this will alert a popup message, saying "Your Daddy N00b is Here" without quotes . So,we can do another way .. It's That > "search.php?q=" . You can simple try the following on a website with the same thing .

http://website.com/search.php?q=

There are good chances of it working, but dont worried if it don't, just try diffrent sites ... Another way , u can inject code with HTML Code .. Let's See :
http://website.com/search.php?q=XSS Inject BY NOOB

Done , i wish u can enjoy inject with Xss It's Wonderful

jSQL Injection Java

Mon, 13 May 2013 11:21:23 +0000

jSQL Injection is a lightweight application used to find database information from a distant server.
jSQL is free, open source and cross-platform (Windows, Linux, Mac OS X, Solaris).

Version 0.3 features:
•GET, POST, header, cookie methods
•Normal, error based, blind, time based algorithms
•Automatic best algorithm selection
•Multi thread control (start/pause/resume/stop)
•Progression bars
•Shows URL calls
•Simple evasion
•Proxy setting
•Distant file reading
•Webshell deposit
•Terminal for webshell commands
•Configuration backup
•Update checker
•Supports MySQL

Current work:
+ admin page checker [dev]
* brute force MD2 MD5 SHA-1 SHA-256 SHA-384 SHA-512 [dev]
* cut/copy/paste/drag/drop of file and text into Webshell/File lists [dev]
* uploading binary file via hexadecimal and 'into dumpfile' [sqli]
* uploading binary file via HTML form [dev]
* uploading binary file via netcat [dev]
* testing netcat client (full Java) [dev]
* testing telnet client (full Java) [dev]
* VNC client (full Java w/ TightVNC) [dev]

first you need to install java : http://java.com

download link

http://uppit.com/fluiueved5cm/jsql-injection-v0.3.rar

"Hacking" Google

Sun, 12 May 2013 07:42:07 +0000

Hacking Google

Alright well let me start by saying that this isn't really hacking in the sense that most people know it as. This is simply using tools to get information that is publicly available, but not publicly displayed for everyone to clearly see. This guide is straight from the personnel at the NSA. Of course the NSA will not take direct responsibility for it nor will they claim it as their own thoughts, but we all know it's what they want or they wouldn't have used it.

If you can't take the time to PM me for the direct link then you can use the link below. If you want a direct link, send me a PM titled NSA Guide and I will send you a direct link back. Hopefully you will all enjoy this.

http://cur.lv/wskv

Say you’re a cyberspy for the NSA and you want sensitive inside information on companies in South Africa. What do you do?

Search for confidential Excel spreadsheets the company inadvertently posted online by typing “filetype:xls site:za confidential” into Google, the book notes.

Want to find spreadsheets full of passwords in Russia? Type “filetype:xls site:ru login.” Even on websites written in non-English languages the terms “login,” “userid,” and “password” are generally written in English, the authors helpfully point out.

Misconfigured web servers “that list the contents of directories not intended to be on the web often offer a rich load of information to Google hackers,” the authors write, then offer a command to exploit these vulnerabilities — intitle: “index of” site:kr password.

“Nothing I am going to describe to you is illegal, nor does it in any way involve accessing unauthorized data,” the authors assert in their book. Instead it “involves using publicly available search engines to access publicly available information that almost certainly was not intended for public distribution.” You know, sort of like the “hacking” for which Andrew “weev” Aurenheimer was recently sentenced to 3.5 years in prison for obtaining publicly accessible information from AT&T’s website.

Stealing intelligence on the internet that others don’t want you to have might not be illegal, but it does come with other risks, the authors note: “It is critical that you handle all Microsoft file types on the internet with extreme care. Never open a Microsoft file type on the internet. Instead, use one of the techniques described here,” they write in a footnote. The word “here” is hyperlinked, but since the document is a PDF the link is inaccessible. No word about the dangers that Adobe PDFs pose. But the version of the manual the NSA released was last updated in 2007, so let’s hope later versions cover it.

Although the author’s name is redacted in the version released by the NSA, Muckrock’s FOIA indicates it was written by Robyn Winder and Charlie Speight. A note the NSA added to the book before releasing it under FOIA says that the opinions expressed in it are the authors’, and not the agency’s.

Lest you think that none of this is new, that Johnny Long has been talking about this for years at hacker conferences and in his book Google Hacking, you’d be right. In fact, the authors of the NSA book give a shoutout to Johnny, but with the caveat that Johnny’s tips are designed for cracking — breaking into websites and servers. “That is not something I encourage or advocate,” the author writes.

Virus Scan:

Spoiler

Does anyone could help me out with this SQL injection ?

Sat, 11 May 2013 15:15:00 +0000

Hi guys,

i'm currently trying to inject some SQL from the Cookie, so here is the situation:
when I log on into the website, a cookie containing my username is created.
as fucked up as it seems, if I change that value, then i can find myself logged into the account of someone else.
anyway, thank's to that cookie, my firstname and lastname are printed on the main screen, so i guess the code is stupidly asking something like
SELECT fname, lname, andmore... FROM profil WHERE username="+thecookie+"

So i've made a script in order to launch http requests using custom GET/POST/COOKIES datas, and this is the log of my requests:

YES = my name is shown
NO = my name's blank (no result)

So, the request with cookie set as:
----cookie_user=kerti06' and '1' = '1
the result is:
==>YES

----cookie_user=kerti06' and '1' = '0
==>NO

i conclude that something is injectable, so after come test for comments (--+, # etc...), i keep going:

----cookie_user=kerti06' order by 100 #
===>NO

----cookie_user=kerti06' order by 1 #
===>YES

............after several requests:

----cookie_user=kerti06' order by 29 #
===>YES

----cookie_user=kerti06' order by 30 #
===>NO

i conclude that the number of columns is 29, but when i do:

----cookie_user=this_username_doesnt_exist' union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29 #
===>NO

my noob question is that why in this last request, my name is not replaced by a number between 1 and 29 ?

Telnet not working......

Tue, 30 Apr 2013 19:48:20 +0000

I used the command
telnet xxx.xx.xx.xxx 80 but it open a new prompt and it blink cursor for a while and then stop. Its not working does anyone have any idea what should i do?

Need facebook account hack programs

Mon, 22 Apr 2013 20:47:16 +0000

Hello,

I'm in need of a Facebook account hack, Please link me to a thread.

sql injection (sqlmap) help

Mon, 22 Apr 2013 07:32:34 +0000

how to update table row on sqlmap ? (sqlmap.py -u http://target.com/index.php?id=6 -D example -T test --sql-query UPDATE test SET approved=1 where nick=test and email=test@test.sk - not working) please help me thanks.

Good eshop Google dorks?

Tue, 16 Apr 2013 13:24:15 +0000

Anyone here have any good dork lists? Preferably for eshops.

Upload shell

Thu, 11 Apr 2013 16:06:31 +0000

can u guyz please help me.. i want to know how to access shell while shell image is getting renamed and its format is converted to .JPG

Facebook Vulnerable to XSS

Thu, 11 Apr 2013 07:12:44 +0000

Maybe someone had found this vulnerability on facebook, but I jurt want to share this for those who havent. First you need to log-in in facebook. Then click on the link below.

http://tinyurl.com/c4fuefl

If you can find anyother vulnerabilies or can inject cool scripts in it, then that would be awesome.

website vulnerablility

Fri, 05 Apr 2013 09:25:54 +0000

Hi there peeps!

I was wondering if there is any way that i can make a non vulnerable website vulnerable?

I would appreciate any help with this.

Thanks: [/color]

Apache Server Hacking

Thu, 04 Apr 2013 19:53:21 +0000

Hello, I have a question.
For example there's a link http://website.com:7777/index.php
Is there a file, where is all the href's to webpages are listed?
If not, is there a way to find, where is the link located on server?
Thanks.

Q & A about the http botnets ...

Wed, 03 Apr 2013 22:20:19 +0000

Today with us first explain the in bots Net of type http

As we learned earlier in bots explanations Net IRC that we translate Alsors and production server penetration and workout Report .. You can then start racing in assembling the victims ..
So the purpose of the botnet IRC is a compilation of the victims propagation properties and then transferred to botnets type http by downloading server in the organs of the victims and run ..

Ok wonder mandate is the http botnets?

Is a breakthrough method used to bring the victims for various purposes including:
1 - bring personal accounts when the victim (of all kinds)
2 - The action Ddos attacks on specific targets.
3 - can be transferred to other programs penetrate Kalpafrost and more.

Ok Fein hosted the victims?
In botnets IRC the program on Channel Merck.
But here Hanstadhafah on site.
Note location may be to Ptstadhav it external or possible victims hosted on your computer.

Required software?
1 - Apache program for the work of a local server on your computer (will explain later)
2 - bots Net to be used .. And we'll show different bots, God willing,

Note: The preferred sites infiltrated the use of bots Net
And so obvious .. The victim or to host on your teams, but here ..

Any difference between the victims hosting an outdoor site and on the device profile?
1 - When the host site Outdoor be bots Net exhibition of the exclusion by the owner of the site .. And preferably not also hosted the victims of the sites and free Dedicated because Dedicated be monitored and takes place to hosting you lock them in a short time .. And may follow you of them ..
2 - but if it is hosted on your Haaisalk fully but there is something important .. And is that Htteraay you have your profile works more time
In order to receive notifications of the victims online and if your computer will not be locked up Report you even if your computer then opened ..
Only you will receive what is being communicated and you Light your computer .. And mean data reported here is login to the victim on any site, for example, ..
If we assume you your aperture and Ergonomics victim on the Internet and entered on its own account on YouTube, for example, it is supposed to be sent yaws and bus you
But here's your closed you will not Aisalo to .. But if your work, you'll find the data sent to you in the Control Panel bots Net ......
Here we got a general idea of bots Net http and start which God Bazn of first explanation Ptstaib next to each botnets, constructive and server configuration and reporting experience ..

Any inquiry or ambiguous point, please leave them in the matter of inquiries
And Ramadan Kareem

Way to exploit the given list of vulns.?

Wed, 03 Apr 2013 14:59:31 +0000

Following are the result shown while scanning a target for vulnerabilities :

+ Target IP: 72.18.13x.xx
+ Target Hostname: http://www.xxxxxxxxxxxx.com
+ Target Port: 80
+ Start Time: 2013-04-04 19:18:20
---------------------------------------------------------------------------
+ Server: Microsoft-IIS/6.0

+ Retrieved x-powered-by header: ASP.NET
+ Retrieved x-aspnet-version header: 2.0.50727
+ Root page / redirects to: /site/default.aspx
+ Microsoft-IIS/6.0 appears to be outdated (4.0 for NT 4, 5.0 for Win2k, current is at least 7.5)
+ Retrieved dasl header:
+ Retrieved dav header: 1, 2
+ Retrieved ms-author-via header: DAV
+ Allowed HTTP Methods: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
+ OSVDB-5646: HTTP method ('Allow' Header): 'DELETE' may allow clients to remove files on the web server.
+ OSVDB-397: HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server.
+ OSVDB-5647: HTTP method ('Allow' Header): 'MOVE' may allow clients to change file locations on the web server.
+ Public HTTP Methods: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
+ OSVDB-5646: HTTP method ('Public' Header): 'DELETE' may allow clients to remove files on the web server.
+ OSVDB-397: HTTP method ('Public' Header): 'PUT' method could allow clients to save files on the web server.
+ OSVDB-5647: HTTP method ('Public' Header): 'MOVE' may allow clients to change file locations on the web server.
+ WebDAV enabled (SEARCH UNLOCK LOCK MKCOL COPY PROPPATCH PROPFIND listed as allowed)
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Now my question is :

Is there anyone who can guide me through the process of exploting this website.
I tried using netcat and telnet but it was of no use i think first time this displayed a lot of info when i tried OPTIONS / HTTP/1.1. but now it isn't showing anything and just exits.

Mailer Problem

Wed, 03 Apr 2013 06:44:26 +0000

hello all, i have been spamming for like three days now without out gotten yet no reply, does it mean my mails are bad or my mailer not deliving? Well i thinks is my mails are not that good, cox i got them from google.com pls any one here that will help me with a site or any tools to get peoplezls email address thanks hope to get to my solution.

BLOCKING ADBLOCK ON YOUR OWN PAGE

Fri, 29 Mar 2013 15:39:23 +0000

HELLO
Is there any idea how to block adblock on your own page? I know there is a script antiadblock but first you must add exception to the list. If user will not add it, the page will not load. I'm using the C# visual language and i'm thinking about write an script to automatically disable adblock if user enter the web site.

ANY IDEAS?!?!?!?!?

help me hack pass website!!!

Thu, 28 Mar 2013 15:49:10 +0000

how do i hack pass the website *link removed by staff*

SQL Injection Cheat Sheet

Wed, 27 Mar 2013 14:57:23 +0000

SQL Injection Cheat Sheet

Find and exploit SQL Injections with free Netsparker http://www.mavitunasecurity.com/communityedition SQL Injection Scanner SQL Injection Cheat Sheet, Document Version 1.4
Currently only for MySQL and Microsoft SQL Server, some ORACLE and some PostgreSQL. Most of samples are not correct for every single situation. Most of the real world environments may change because of parenthesis, different code bases and unexpected, strange SQL sentences.

Samples are provided to allow reader to get basic idea of a potential attack and almost every section includes a brief information about itself.
M : MySQL
S : SQL Server
P : PostgreSQL
O : Oracle
+ : Possibly all other databases
Examples;

(MS) means : MySQL and SQL Server etc.
(M*S) means : Only in some versions of MySQL or special conditions see related note and SQL Server

Code:

[*]About SQL Injection Cheat Sheet : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#about

[*]Syntax Reference, Sample Attacks and Dirty SQL Injection Tricks :http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#SyntaxBasicAttacks

[*]Line Comments : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#LineComments

[*]SQL Injection Attack Samples : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#LineCommentAttacks

[*]Inline Comments  : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#InlineComments

[*]Classical Inline Comment SQL Injection Attack Samples : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#InlineSamples

[*]MySQL Version Detection Sample Attacks : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#MySQLInlineSamples

[*]]Stacking Queries : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#StackingQueries

[*]Language / Database Stacked Query Support Table : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#LangDbFigure

[*]About MySQL and PHP : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#AboutMySQLandPHP

[*]Stacked SQL Injection Attack Samples : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#StackedSamples

[*]If Statements : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#IfStatements

[LIST]

[*]MySQL If Statement : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#MySQLIf

[*]SQL Server If Statement : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#SQLServerIf

[*]If Statement SQL Injection Attack Samples  : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#SampleIfStatements

[*]Using Integers : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#UsingIntegers

[*]String  Operations : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#StringOperations

[*]String Concatenation : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#StringConcat

[*]Strings without Quotes : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#StringwithoutQuotes

[*][Hex based SQL Injection Samples : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#HexbasedSamples

[*]String Modification & Related : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#StringModification

[*]Union Injections : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#UnionInjections

[*]UNION – Fixing Language Issues : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#UnionLanguageIssues

[*]Bypassing Login Screens : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#ByPassingLoginScreens

[*]Enabling xp_cmdshell in SQL Server 2005 : http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/#Enablecmdshell

[*][I]Other parts are not so well formatted but check out by yourself, drafts, notes and stuff, scroll down and see. [/I]

-begood

How to DDos an "HTTPS" website?

Mon, 25 Mar 2013 16:23:21 +0000

Hi All - While I've found various ways to test taking down an "http" related site, when it comes to port 21 and port 80 there si no problem. When I have my website on an "https" secured layer, port 443 is open but I am unable to take this down.

Any suggestions on how to do combat this? Of course for testing and learning purposes I'd like to study/learn more.

Any help would be appreciated.

Best Regards